Multi-authority attribute hidden for electronic medical record sharing scheme based on blockchain

Lin JIN; Youliang TIAN

doi:10.11959/j.issn.2096-109x.2022044

网络与信息安全学报 (Aug 2022)

Multi-authority attribute hidden for electronic medical record sharing scheme based on blockchain

Lin JIN,
Youliang TIAN

Affiliations

Lin JIN: College of Computer Science and Technology, Guizhou University, Guiyang 550025, China
Youliang TIAN: College of Computer Science and Technology, Guizhou University, Guiyang 550025, China ; State Key Laboratory of Public Big Data, Guizhou University, Guiyang 550025, China

DOI: https://doi.org/10.11959/j.issn.2096-109x.2022044
Journal volume & issue: Vol. 8, no. 4
pp. 66 – 76

Abstract

Read online

Currently, there is no data exchanging and sharing between different hospitals, and it is easy to form data islands.At the same time, regional medical data contains a large amount of sensitive information of patients.The public acquisition, sharing and circulation of these data will lead to malicious tampering, theft, abuse and loss of ownership, thereby revealing patient privacy.In addition, the size of medical data is enormous and the data is unstructured, then it is more difficult to prevent and hold accountable some highly targeted malicious attacks, such as malicious attacks on medical data theft, tampering, and extortion.In view of the above problems, a blockchain-based on multi-authority attribute hidden electronic medical record sharing scheme was proposed to achieve fine-grained access to shared electronic medical records while ensuring patient privacy.The Multi-Authorization Attribute Encryption (MA-ABE) algorithm was introduced, which used multi-authority organizations to manage decentralized attributes.It also used hash functions to identify different users, in order to effectively resist collusion attacks between users with different authorizations.Besides, the linear secrets sharing scheme (LSSS) was used to realize partial hiding of attributes, and the attributes were divided into two parts:attribute name and attribute value.In addition, combined with the characteristics of blockchain openness, transparency and tamper-proof, the design of access policy can update the algorithm.Based on the access policy update algorithm, the policy block was added.The new access policy was uploaded to the blockchain to form a policy update traceability chain, which can realize distributed and reliable access control management under the condition of hidden policy.It can also support data privacy protection at the same time, and traceability of user behavior.The theoretical proof and experimental analysis have proved that this scheme protect attribute privacy effectively, while reduces computational overhead.

Published in 网络与信息安全学报

ISSN: 2096-109X (Print)
Publisher: POSTS&TELECOM PRESS Co., LTD
Country of publisher: China
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: http://www.infocomm-journal.com/cjnis/CN/2096-109X/home.shtml

About the journal

Abstract

Keywords